7 HTTPS myths debunked

HTTPWatch Blog has a nice article debunking these HTTPS myths -

  • Myth #1 – My Site Only Needs HTTPS for the Login Page
  • Myth #2 – Anything can go in Cookies and Query Strings with HTTPS
  • Myth #3 – HTTPS is Too Slow
  • Myth #4 – New SSL Certificates Have to be Purchased When Moving Servers or Running Multiple Servers
  • Myth #5 – Each HTTPS Site Needs its Own Public IP Address
  • Myth #6 – SSL Certificates are Expensive
  • Myth #7 – HTTPS Never Caches

Also see:
A Web App Is As Secure As You Make It & the Browser It Runs On
Prevent identity theft with HTTPS browsing

Comments